$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: J4MZuA6vUh/Jiy00VSlr/6d467ZsxSj+GsComqb6FoM= Subject key identifier: BD:9C:5C:0F:B8:3F:74:BB:78:00:AA:36:46:7D:84:E9:F3:96:23:A7 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 6AE49043F174FACA0710B1C694A39A094937B89B Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:49 +0000 ROA not before: Sun 03 May 2026 03:03:49 +0000 ROA not after: Sun 02 May 2027 03:08:49 +0000 asID: 24525 IP address blocks: 114.199.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e4:90:43:f1:74:fa:ca:07:10:b1:c6:94:a3:9a:09:49:37:b8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:49 2026 GMT Not After : May 2 03:08:49 2027 GMT Subject: CN=BD9C5C0FB83F74BB7800AA36467D84E9F39623A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:70:a2:77:fa:38:11:25:a4:42:96:f6:63:5c: 44:ac:62:c8:73:50:02:68:19:40:d4:22:1f:b6:c0: c0:dd:31:f1:bc:59:66:ee:22:a9:ae:30:1b:91:be: d3:7b:32:86:9d:90:b8:52:bd:72:a2:58:b1:40:ea: 66:a5:b1:dd:5f:af:91:06:c3:79:ba:24:cb:dc:48: 50:20:5c:07:e3:95:f4:ef:74:e7:61:ea:90:28:cb: 70:c9:ce:de:fe:ca:38:31:dc:47:64:41:3d:92:62: cb:b8:92:f5:36:35:a5:e2:a5:bb:96:99:87:5a:5a: 51:80:46:82:b3:e7:1c:44:f3:9a:3f:dd:69:b6:c0: 8c:18:50:3a:05:47:28:ef:07:4c:b0:c9:21:3b:3a: 97:02:03:44:6c:98:98:28:3d:95:22:1c:66:40:47: 74:27:72:3a:0e:07:d4:fb:c5:1f:40:cd:1c:ec:fe: 15:50:36:7a:4a:11:5e:d4:53:18:a3:24:71:a4:69: ca:58:7e:e0:d1:09:36:5d:54:5d:7c:6c:43:73:ee: 09:7d:db:47:14:e9:1e:84:db:de:19:ad:fb:9d:d2: 07:9a:fe:64:6f:e4:98:2e:17:7e:e2:6f:a6:cc:09: 58:84:52:2e:2f:dc:a8:fb:38:22:1d:89:37:82:01: b2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:9C:5C:0F:B8:3F:74:BB:78:00:AA:36:46:7D:84:E9:F3:96:23:A7 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/22 Signature Algorithm: sha256WithRSAEncryption 26:34:73:34:28:90:8f:52:fd:bd:4c:01:d4:53:38:c0:2c:d9: 95:7f:ff:57:20:40:c0:a1:eb:67:38:5f:39:ec:82:47:1c:b2: 40:3f:9f:df:34:0c:86:5c:ce:b8:32:06:2e:9f:48:f2:81:6f: 7c:36:d9:e5:06:46:18:39:6c:88:3b:d2:23:39:01:b7:45:7b: 5a:18:4c:a9:22:46:37:ac:b2:49:0e:21:35:42:94:f1:e4:6f: 02:4a:ab:39:f7:df:f4:36:da:06:cc:0e:3c:ee:31:7f:9b:38: a8:35:c1:9a:70:7b:9e:4f:ff:96:ed:f0:41:bb:fb:eb:bd:34: 3b:39:40:e0:d9:10:d3:29:e4:cd:7a:21:fa:c8:0a:8d:40:48: ff:55:e0:64:36:1d:8f:3c:1d:da:3b:36:05:e2:f3:08:38:2d: 9b:e6:4c:77:ce:53:50:5d:fd:a7:7a:32:93:1c:25:a5:b9:e3: 28:8b:7b:38:cb:0a:3f:32:ae:67:45:6f:65:f1:ee:43:f7:24: cc:c2:dd:a4:61:b0:22:11:0d:86:f9:0c:78:f0:3b:c8:3a:38: 12:20:3e:22:ea:5f:12:47:14:0d:83:44:8a:b3:14:6a:ce:b6: a2:4b:c4:b3:d4:e3:21:4e:3b:8b:55:c9:f1:78:a9:33:12:a1: 2b:99:d5:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUauSQQ/F0+soHELHGlKOaCUk3uJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNDlaFw0yNzA1MDIwMzA4NDlaMDMxMTAvBgNV BAMTKEJEOUM1QzBGQjgzRjc0QkI3ODAwQUEzNjQ2N0Q4NEU5RjM5NjIzQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPcKJ3+jgRJaRClvZjXESsYshz UAJoGUDUIh+2wMDdMfG8WWbuIqmuMBuRvtN7MoadkLhSvXKiWLFA6malsd1fr5EG w3m6JMvcSFAgXAfjlfTvdOdh6pAoy3DJzt7+yjgx3EdkQT2SYsu4kvU2NaXipbuW mYdaWlGARoKz5xxE85o/3Wm2wIwYUDoFRyjvB0ywySE7OpcCA0RsmJgoPZUiHGZA R3QncjoOB9T7xR9AzRzs/hVQNnpKEV7UUxijJHGkacpYfuDRCTZdVF18bENz7gl9 20cU6R6E294Zrfud0gea/mRv5JguF37ib6bMCViEUi4v3Kj7OCIdiTeCAbK7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvZxcD7g/dLt4AKo2Rn2E6fOWI6cwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQAmNHM0KJCPUv29TAHUUzjALNmVf/9XIEDAoetnOF857IJH HLJAP5/fNAyGXM64MgYun0jygW98NtnlBkYYOWyIO9IjOQG3RXtaGEypIkY3rLJJ DiE1QpTx5G8CSqs599/0NtoGzA487jF/mzioNcGacHueT/+W7fBBu/vrvTQ7OUDg 2RDTKeTNeiH6yAqNQEj/VeBkNh2PPB3aOzYF4vMIOC2b5kx3zlNQXf2nejKTHCWl ueMoi3s4ywo/Mq5nRW9l8e5D9yTMwt2kYbAiEQ2G+Qx48DvIOjgSID4i6l8SRxQN g0SKsxRqzraiS8Sz1OMhTjuLVcnxeKkzEqErmdUa -----END CERTIFICATE-----Generated at Wed May 13 03:47:46 2026 by rpki-client